The launch of a big Microsoft Windows 10 update like the Fall Creators Update isn’t the end of a process — it’s really just the beginning. As soon as a major update is released, Microsoft quickly gets to work on improving it by fixing bugs, releasing security patches, and occasionally adding new features.

Here we’ve summarized what you need to know about every Windows 10 update being released to the public. First come updates to the currently shipping version of Windows 10 — version 1709, known as the Fall Creators Update — with the most recent updates on top. (Note that the Fall Creators Update is on a phased rollout, so you may not have received it yet.) Below that are updates to version 1703, known as the Creators Update. For each build, we’ve included the date of its initial release and a link to Microsoft’s announcement about it.

KB4051963 (OS Build 16299.98)

Release date: November 30, 2017

This minor, non-feature update includes a variety of bug fixes. It addresses several problems with Internet Explorer, including a script-related issue that caused the browser to stop working in some cases, and another in which forms submissions didn’t work properly. It also fixed performance problems when users run full-screen Microsoft DirectX 9 games and applications. And it fixes an issue in which user selections for Feedback Frequency in Settings > Privacy > Feedback & diagnostics weren’t saved.

KB4048955 (OS Build 16299.64)

Release date: November 14, 2017

This first “Patch Tuesday” release for the Fall Creators Update contains no new features, but has a variety of bug fixes and security patches. It fixes a problem that caused the Mixed Reality Portal to stop responding on launch and one where black screens appeared when switching between windowed and full-screen modes when playing some Microsoft DirectX games. It also fixes an issue in which application tiles were missing from the Start menu. A variety of other problems have been solved as well.

Fifty-three security vulnerabilities have also been also fixed, with 20 of them rated as critical. Security holes have been patched throughout Windows, including in Internet Explorer, Microsoft Edge, Windows, Microsoft Office, ASP.NET Core, and Chakra Core.

What IT needs to know: Because this is a security update, it should be applied soon. Over the next few days, check for reports about problematic issues, and if all seems well, apply the update.

Windows 10 Fall Creators Update (version 1709)

Version 1709, called the Windows 10 Fall Creators Update, is the most recent major update to Windows 10. Here’s a quick summary of what’s new for users in it. (For more details, see our full review.)

OneDrive gets a new feature called Files On-Demand that gives you access to all of your OneDrive files on every device, without having to download them first. You’ll be able to see all the files you have in OneDrive, even if they’re only in the cloud and not on your PC. Icons tell you which are local and which are in the cloud. Just open the file, and if it’s not on your PC, it gets downloaded.

The new My People feature lets you pin three contacts to the Windows taskbar and then communicate with them instantly without having to open a separate app such as Skype or Mail. You can also click to see a list of all communications between them and you at a glance.

You can now send web links from your iOS or Android device to your PC and have them open in Microsoft Edge.

Cortana gets several new features, including displaying results in a scrollable flyout panel, so you don’t have to launch a web browser.

Microsoft Edge gets some minor improvements, including better Favorites handling and the ability to mark up PDFs and e-books.

Security has been beefed up, including the addition of Windows Defender Exploit Guard, which includes intrusion rules and policies to protect against a variety of threats, notably zero-day exploits. A new anti-ransomware feature called Controlled Folder Access has also been added; it lets only approved apps have access to Windows system files and folders.

New privacy features include the ability to review the kinds of devices and services apps from the Microsoft Store want access to before you download them.

The update incorporates Microsoft’s new design system and guidelines, called Fluent Design. Overall, transitions are smoother, and there are subtle changes to the transparency effect.

What IT needs to know: IT staff should be aware of these features that are new in the Windows 10 Fall Creators Update:

The notoriously insecure SMBv1 networking protocol, exploited in recent ransomware attacks including WannaCry and Petya, won’t be included on clean installs of the Windows 10 Fall Creators Update, but SMBv1 components will remain if you do in-place upgrades on PCs that already have the component installed.

Windows Defender Advanced Threat Protection (ATP), a suite of tools introduced in Windows 10 that helps enterprise customers protect their users and networks against threats and respond to attacks, is being beefed up. Among other things, it will run on the Windows Server OS.

ATP is also part of Windows Defender Application Guard for Microsoft Edge, available only for Windows 10 Enterprise Edition. It protects against malware attacks by confining visits to unknown or untrusted websites to a virtual machine, so that attacks can’t spread to a PC or the network.

Windows Analytics’ new Device Health tool gathers information on how PCs perform in an enterprise, and based on that, identifies potential issues and outlines steps to resolve them.

Enterprises get more control over what kind of information Windows Analytics gathers for the IT staff. In order to improve users’ privacy, IT staff can limit the information collected by Windows Analytics to only diagnostic data.

Updates to the Creators Update (version 1703)

KB4041676 (OS Build 15063.674)

Release date: October 10, 2017

This non-feature update addresses a wide variety of issues, including ones related to security. It fixes a bug that won’t allow some games from downloading from the MIcrosoft Store. The build also fixes an issue in which some Universal Windows Platform (UWP) apps and Centennial apps (.NET and Win32-based Windows applications that have been packaged to be published to the Microsoft Store) have a gray icon and display the error message “This app can’t open” on launch.

KB4040724 (OS Build 15063.632)

Release date: September 25, 2017

This non-feature update addresses two very minor issues: Cellular connectivity and reliability have been improved, and performance problems with Microsoft Edge that were introduced in KB40387888 have been resolved.

KB4038788 (OS Build 15063.608)

Release date: Sept. 12, 2017

This non-feature update addresses a wide variety of miscellaneous minor issues, including one where some machines fail to load wireless WAN devices when they resume from Sleep, and another where spoolsv.exe stops working. Also addressed is a problem in which the option to join Azure AAD is sometimes unavailable during the out-of-box experience, and another in which clicking the buttons on Windows Action Center notifications results in no action being taken.

What IT needs to know

This release includes security updates to Microsoft Graphics Component, Windows kernel-mode drivers, Windows shell, Microsoft Uniscribe, Microsoft Edge, Device Guard, Windows TPM, Internet Explorer, Microsoft Scripting Engine, Windows Hyper-V, Windows kernel and Windows Virtualization. Because it’s a security update, it should be applied soon. Over the next few days, check for reports about problematic issues, and if all seems well, apply the update.

KB4034674 (OS Build 15063.540)

Release date: Aug. 8, 2017

This non-feature update addresses a variety of minor issues, primarily aimed at IT. Two fixes are for mobile devices: One in which the policies provisioned using Mobile Device Management (MDM) don’t take precedence over policies set by provisioning packages, but should, and another in which an access violation in the Mobile Device Manager Enterprise feature causes stop errors. Also addressed is an issue in which the Site to Zone Assignment List group policy (GPO) was not set on machines when it was enabled.

KB4032188 (OS Build 15063.502)

Release date: July 31, 2017

This non-feature update addresses a variety of minor issues and bugs, including one in which Win32 applications have problems working with various Bluetooth LE devices including head tracking devices, a reliability issue with launching the Settings app while an application is using the camera, and a bug in which video playback artifacts appear during transitions from portrait to landscape on mobile devices.

What IT needs to know: Several minor issues addressed in this update affect IT, including the Mobile Device Manager Enterprise feature not allowing headsets to work correctly, and a bug that can cause a service using a Managed Service Account (MSA) to fail to connect to a domain after an automatic password update.

KB4025342 (OS Build 15063.483)

Release date: July 11, 2017

This security update (a Patch Tuesday release) fixes 54 vulnerabilities in Windows 10, Microsoft Edge, Internet Explorer, Microsoft Office and Microsoft Exchange. Nineteen of the vulnerabilities were rated as critical, 32 as important and three as moderate.

The critical bugs include six remote code execution ones, including one for Microsoft’s HoloLens mixed reality head-mounted display that is currently available only to developers. It allowed the device to be hacked “by merely receiving WiFi packets, apparently without any form of authentication at all,” in Microsoft’s words.

Microsoft Edge received patches for thirteen critical scripting engine memory corruption vulnerabilities, including one in which an attacker could gain the same user rights as the current user.

What IT needs to know: Because this is a security update, it should be applied soon. Over the next few days, check for reports about problematic issues, and if all seems well, apply the update. In addition to the patches for Windows 10 Creators Update are security patches for Windows Server 2016 / Windows 10 Anniversary Update.